Period
to 20 November 2017

The following table provides summary statistics for contract job vacancies with a requirement for PCI DSS skills. Included is a benchmarking guide to the contractor rates offered in vacancies that have cited PCI DSS over the 6 months to 20 November 2017 with a comparison to the same period in the previous 2 years.

Note that daily and hourly rates are treated separately in these statistics. When calculating contractor rate percentiles, daily rates are never derived from quoted hourly rates or vice versa.

Payment Card Industry Data Security Standard (PCI DSS)
UK
6 months to
20 Nov 2017
Same period 2016 Same period 2015
Rank 421 366 370
Rank change year-on-year -55 +4 +47
Contract jobs citing PCI DSS 543 663 700
As % of all contract IT jobs advertised in the UK 0.53% 0.64% 0.61%
As % of the Quality Assurance & Compliance category 4.17% 5.62% 5.17%
Number of daily rates quoted 308 412 435
UK median daily rate £475 £475 £463
Median daily rate % change year-on-year - +2.70% +2.78%
10th Percentile £313 £338 £326
90th Percentile £600 £588 £579
UK excluding London median daily rate £450 £450 £450
Number of hourly rates quoted 1 5 1
UK median hourly rate £30.00 £27.62 £39.51
Median hourly rate % change year-on-year +8.62% -30.08% -12.21%
10th Percentile £27.50 £23.54 £37.69
90th Percentile £32.50 £37.40 £41.32
UK excluding London median hourly rate £30.00 £27.62 -
% change year-on-year +8.62% - -

PCI DSS is in the Quality Assurance and Compliance category. The following table is for comparison with the above and provides summary statistics for all contract job vacancies with a requirement for quality assurance or compliance skills.

All Quality Assurance and Compliance Skills
UK
Contract vacancies with a requirement for quality assurance or compliance skills 13016 11803 13537
As % of all contract IT jobs advertised in the UK 12.73% 11.35% 11.84%
Number of daily rates quoted 8498 7699 8557
UK median daily rate £438 £425 £405
Median daily rate % change year-on-year +2.94% +4.94% +1.25%
10th Percentile £256 £225 £230
90th Percentile £638 £600 £588
UK excluding London median daily rate £400 £393 £387
% change year-on-year +1.91% +1.55% +6.62%
Number of hourly rates quoted 378 417 479
UK median hourly rate £20.00 £23.50 £22.50
Median hourly rate % change year-on-year -14.89% +4.44% +18.42%
10th Percentile £11.25 £10.78 £11.45
90th Percentile £49.46 £47.10 £51.25
UK excluding London median hourly rate £20.00 £25.00 £22.00
% change year-on-year -20.00% +13.64% +12.82%

PCI DSS
Job Vacancy Trend

Job postings citing PCI DSS as a percentage of all IT jobs advertised.

Job vacancy trend for PCI DSS in the UK

PCI DSS
Contractor Daily Rate Trend

This chart provides the 3-month moving average for daily rates quoted in contract jobs citing PCI DSS.

Contractor daily rate trend for PCI DSS in the UK

PCI DSS
Contractor Daily Rate Histogram

The daily rate distribution of IT jobs citing PCI DSS over the 6 months to 20 November 2017.

Contractor daily rate histogram for PCI DSS in the UK

PCI DSS
Contractor Hourly Rate Trend

This chart provides the 3-month moving average for contractor hourly rates quoted in IT jobs citing PCI DSS.

Contractor hourly rate trend for PCI DSS in the UK

PCI DSS
Top 15 Contract Locations

The table below looks at the demand and provides a guide to the median contractor rates quoted in IT jobs citing PCI DSS within the UK over the 6 months to 20 November 2017. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Contract
IT Job Ads
Median
Daily Rate
Past 6 Months
Median Daily Rate
% Change
on Same Period
Last Year
Live
Job
Vacancies
England -71 505 £475 - 122
UK excluding London +1 329 £450 - 77
London -73 205 £500 +2.04% 45
South East -32 128 £429 -7.10% 17
North of England +54 64 £425 - 30
East of England -12 48 £475 -3.80% 11
North West +13 37 £475 +8.57% 11
South West -18 36 £475 +2.70% 7
Midlands +19 23 £425 -11.69% 11
Yorkshire +12 21 £338 -15.63% 14
Scotland -3 19 £550 +46.67% 1
West Midlands +25 16 £425 -12.82% 8
Wales +21 11 £594 +50.79%
East Midlands 0 6 £388 -1.59% 3
North East - 6 £425 - 5

For the 6 months to 20 November 2017, IT contractor jobs citing PCI DSS also mentioned the following skills in order of popularity. The figures indicate the number co-occurrences and its proportion to all contract ads with a requirement for PCI DSS.

1 269 (49.54%) ISO/IEC 27001
2 251 (46.22%) Information Security
3 180 (33.15%) CISSP
4 161 (29.65%) GDPR
5 130 (23.94%) Finance
6 121 (22.28%) CISM
7 97 (17.86%) Risk Management
8 95 (17.50%) Cybersecurity
9 91 (16.76%) Agile Software Development
10 88 (16.21%) Data Protection
11 83 (15.29%) Firewall
12 81 (14.92%) Windows
13 78 (14.36%) Linux
14 77 (14.18%) COBIT
14 77 (14.18%) SIEM
15 72 (13.26%) Degree
16 70 (12.89%) CISA
17 69 (12.71%) Management Information System
17 69 (12.71%) Project Management
18 67 (12.34%) ITIL
19 63 (11.60%) Security Operations
20 62 (11.42%) Amazon AWS
20 62 (11.42%) Microsoft
21 57 (10.50%) Retail
22 56 (10.31%) Security Architecture
23 51 (9.39%) Cisco
24 49 (9.02%) Microsoft Azure
25 48 (8.84%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
25 48 (8.84%) Data Centre
26 47 (8.66%) Stakeholder Management

PCI DSS
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 21 (3.87%) Tomcat
2 17 (3.13%) Apache
3 16 (2.95%) Oracle SOA Suite
4 10 (1.84%) IIS
5 9 (1.66%) JBoss
5 9 (1.66%) WebSphere
6 8 (1.47%) SharePoint
7 4 (0.74%) Apache Solr
7 4 (0.74%) CMS
8 3 (0.55%) Apache Pig
8 3 (0.55%) Confluence
8 3 (0.55%) MS Exchange
8 3 (0.55%) Skype for Business
9 2 (0.37%) Elasticsearch
9 2 (0.37%) Mule
10 1 (0.18%) Apache Spark
10 1 (0.18%) SAS
Applications
1 15 (2.76%) Microsoft Office
2 11 (2.03%) Microsoft Excel
2 11 (2.03%) Microsoft Project
3 8 (1.47%) Microsoft PowerPoint
4 2 (0.37%) MS Visio
5 1 (0.18%) Spreadsheet
Business Applications
1 15 (2.76%) Payment Gateway
2 1 (0.18%) Dynamics AX
2 1 (0.18%) RMDS
Cloud Services
1 62 (11.42%) Amazon AWS
2 49 (9.02%) Microsoft Azure
3 20 (3.68%) Office 365
4 19 (3.50%) Mimecast
5 14 (2.58%) SaaS
6 13 (2.39%) GitHub
7 8 (1.47%) IaaS
8 7 (1.29%) Cloud Computing
9 6 (1.10%) Serverless
10 2 (0.37%) Amazon S3
10 2 (0.37%) AWS CloudFormation
10 2 (0.37%) G Suite
10 2 (0.37%) iPaaS
11 1 (0.18%) Akamai
11 1 (0.18%) Amazon EC2
11 1 (0.18%) Amazon SQS
11 1 (0.18%) Google Cloud Platform
11 1 (0.18%) npm
Communications & Networking
1 83 (15.29%) Firewall
2 42 (7.73%) TCP/IP
3 37 (6.81%) Network Security
4 30 (5.52%) Intrusion Detection
5 25 (4.60%) LAN
5 25 (4.60%) WAN
6 20 (3.68%) SAN
7 19 (3.50%) DNS
8 15 (2.76%) Cisco ASA
8 15 (2.76%) Wireless
9 13 (2.39%) NAS
9 13 (2.39%) VPN
10 12 (2.21%) Intranet
11 10 (1.84%) LDAP
12 9 (1.66%) F5 BIG-IP LTM
13 8 (1.47%) BIG-IP
13 8 (1.47%) DHCP
13 8 (1.47%) Internet
13 8 (1.47%) VoIP
14 7 (1.29%) SSL
Database & Business Intelligence
1 22 (4.05%) MongoDB
2 21 (3.87%) SQL Server
3 20 (3.68%) PostgreSQL
4 16 (2.95%) Relational Database
5 10 (1.84%) NoSQL
6 7 (1.29%) MySQL
6 7 (1.29%) Redis
7 5 (0.92%) Hadoop
8 3 (0.55%) Apache Cassandra
8 3 (0.55%) Apache Hive
8 3 (0.55%) Big Data
8 3 (0.55%) SQL Server Integration Services
9 2 (0.37%) DataStax
9 2 (0.37%) MariaDB
9 2 (0.37%) QlikView
9 2 (0.37%) SQL Server 2012
9 2 (0.37%) Star Schema
10 1 (0.18%) Enterprise Data Warehouse
10 1 (0.18%) SQL Server 2014
10 1 (0.18%) Sqoop
Development Applications
1 30 (5.52%) Git (software)
2 27 (4.97%) Jenkins
3 22 (4.05%) JIRA
4 21 (3.87%) Cucumber
5 13 (2.39%) GitLab
5 13 (2.39%) Mockito
6 4 (0.74%) Subversion
7 2 (0.37%) Atlassian Bamboo
7 2 (0.37%) Bitbucket
7 2 (0.37%) Maven
8 1 (0.18%) Artifactory
8 1 (0.18%) Gradle
8 1 (0.18%) Grunt
8 1 (0.18%) Hudson
8 1 (0.18%) Jasmine
8 1 (0.18%) Karma Test Runner
8 1 (0.18%) Moq
8 1 (0.18%) Team Foundation Server
8 1 (0.18%) TeamCity
8 1 (0.18%) TestNG
General
1 130 (23.94%) Finance
2 57 (10.50%) Retail
3 35 (6.45%) Legal
4 29 (5.34%) Telecoms
5 26 (4.79%) Banking
6 13 (2.39%) Financial Institution
6 13 (2.39%) Law
7 8 (1.47%) Marketing
8 6 (1.10%) Local Government
9 3 (0.55%) Automotive
9 3 (0.55%) Publishing
10 2 (0.37%) Games
10 2 (0.37%) Manufacturing
11 1 (0.18%) Advertising
11 1 (0.18%) Electronics
11 1 (0.18%) Pharmaceutical
11 1 (0.18%) Retail Banking
11 1 (0.18%) Retail Finance
11 1 (0.18%) Spanish Language
Job Titles
1 105 (19.34%) Analyst
2 87 (16.02%) Architect
3 71 (13.08%) Consultant
4 67 (12.34%) Security Analyst
5 52 (9.58%) Security Consultant
6 48 (8.84%) Security Manager
7 46 (8.47%) Project Manager
8 44 (8.10%) Security Architect
9 35 (6.45%) Information Analyst
9 35 (6.45%) Information Security Analyst
9 35 (6.45%) Security Specialist
10 25 (4.60%) Security Engineer
11 23 (4.24%) Information Security Manager
12 20 (3.68%) Designer
12 20 (3.68%) Information Security Consultant
13 17 (3.13%) Information Manager
13 17 (3.13%) Technical Architect
14 16 (2.95%) Business Analyst
14 16 (2.95%) IT Manager
14 16 (2.95%) Solutions Architect
Libraries, Frameworks & Software Standards
1 33 (6.08%) REST
2 28 (5.16%) Web Services
3 20 (3.68%) Spring
4 18 (3.31%) RESTful
5 15 (2.76%) JSON
5 15 (2.76%) SOAP
6 14 (2.58%) .NET
7 13 (2.39%) JMX
8 9 (1.66%) Middleware
8 9 (1.66%) WebSphere MQ
9 7 (1.29%) ActiveMQ
9 7 (1.29%) ASP.NET Web API
9 7 (1.29%) Gherkin
9 7 (1.29%) HTML
9 7 (1.29%) LAPP Stack
10 5 (0.92%) ASP.NET
10 5 (0.92%) ASP.NET MVC
10 5 (0.92%) jQuery
11 4 (0.74%) JTAPI
11 4 (0.74%) SAML
Miscellaneous
1 69 (12.71%) Management Information System
2 48 (8.84%) Data Centre
3 42 (7.73%) Analytical Skills
4 30 (5.52%) CESG
5 29 (5.34%) Data Protection Act
6 27 (4.97%) Computer Science
7 24 (4.42%) Distributed Denial-of-Service
8 18 (3.31%) PKI
9 13 (2.39%) Algorithms
10 11 (2.03%) Public Cloud
10 11 (2.03%) Security Operations Centre
11 10 (1.84%) EPoS
12 9 (1.66%) Virtual Team
13 8 (1.47%) Enterprise Software
13 8 (1.47%) Hybrid Cloud
14 7 (1.29%) Clustering
14 7 (1.29%) Cyber Attack
14 7 (1.29%) Freedom of Information
14 7 (1.29%) Mobile App
15 6 (1.10%) Freedom of Information Act
Operating Systems
1 81 (14.92%) Windows
2 78 (14.36%) Linux
3 37 (6.81%) Unix
4 24 (4.42%) Windows Server
5 23 (4.24%) Red Hat Enterprise Linux
6 8 (1.47%) Windows Server 2012
7 7 (1.29%) Solaris
8 5 (0.92%) Debian
8 5 (0.92%) Ubuntu
9 4 (0.74%) CentOS
9 4 (0.74%) Fedora
10 3 (0.55%) Windows Server 2008
11 2 (0.37%) Android
11 2 (0.37%) Apple iOS
11 2 (0.37%) Windows NT
12 1 (0.18%) Windows 10
Processes & Methodologies
1 251 (46.22%) Information Security
2 97 (17.86%) Risk Management
3 95 (17.50%) Cybersecurity
4 91 (16.76%) Agile Software Development
5 88 (16.21%) Data Protection
6 77 (14.18%) SIEM
7 69 (12.71%) Project Management
8 67 (12.34%) ITIL
9 63 (11.60%) Security Operations
10 56 (10.31%) Security Architecture
11 47 (8.66%) Stakeholder Management
12 46 (8.47%) Security Management
13 44 (8.10%) TOGAF
14 41 (7.55%) Penetration Testing
14 41 (7.55%) Vulnerability Management
15 40 (7.37%) Data Security
15 40 (7.37%) E-Commerce
15 40 (7.37%) Incident Management
16 38 (7.00%) Migration
17 35 (6.45%) PRINCE2
Programming Languages
1 46 (8.47%) Java
2 23 (4.24%) Python
3 22 (4.05%) SQL
4 13 (2.39%) Bash Shell
4 13 (2.39%) Ruby
5 10 (1.84%) C#
5 10 (1.84%) Perl
5 10 (1.84%) PowerShell
6 7 (1.29%) JavaScript
7 6 (1.10%) PHP
8 2 (0.37%) Delphi
9 1 (0.18%) C
9 1 (0.18%) Groovy
9 1 (0.18%) Objective-C
9 1 (0.18%) Scala
9 1 (0.18%) T-SQL
Qualifications
1 180 (33.15%) CISSP
2 121 (22.28%) CISM
3 72 (13.26%) Degree
4 70 (12.89%) CISA
5 28 (5.16%) SANS
6 21 (3.87%) Computer Science Degree
7 20 (3.68%) Security Cleared
7 20 (3.68%) SSCP
8 18 (3.31%) Cisco Certification
8 18 (3.31%) ISSAP
9 17 (3.13%) Microsoft Certification
10 16 (2.95%) MCSE
11 15 (2.76%) SC Cleared
12 14 (2.58%) CRISC
12 14 (2.58%) PCI QSA
12 14 (2.58%) PRINCE2 Practitioner
13 12 (2.21%) CEH
13 12 (2.21%) MCSA
14 11 (2.03%) ISACA
14 11 (2.03%) ISO 27001 Lead Auditor
Quality Assurance & Compliance
1 269 (49.54%) ISO/IEC 27001
2 161 (29.65%) GDPR
3 77 (14.18%) COBIT
4 48 (8.84%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
5 34 (6.26%) Sarbanes-Oxley
6 15 (2.76%) Cyber Essentials
7 14 (2.58%) HMG Security Policy Framework
8 13 (2.39%) PA-DSS
9 12 (2.21%) PSD2
10 10 (1.84%) RMADS
11 7 (1.29%) AS 2805
11 7 (1.29%) ISO 8583
11 7 (1.29%) ISO/IEC 27005
12 5 (0.92%) HMG Infosec
12 5 (0.92%) ISO 22301
12 5 (0.92%) QA
12 5 (0.92%) SLA
13 4 (0.74%) FedRAMP
13 4 (0.74%) ISAE 3402
13 4 (0.74%) SAS 70
System Software
1 32 (5.89%) Active Directory
2 22 (4.05%) VMware Infrastructure
3 14 (2.58%) XenApp
4 11 (2.03%) vSphere
5 7 (1.29%) Docker
6 4 (0.74%) VMware ESXi
7 2 (0.37%) Apache Flume
7 2 (0.37%) Hyper-V
7 2 (0.37%) IAG
7 2 (0.37%) Microsoft App-V
7 2 (0.37%) XenServer
8 1 (0.18%) Firmware
8 1 (0.18%) HDFS
8 1 (0.18%) Snort
8 1 (0.18%) Terminal Services
8 1 (0.18%) UAG
Systems Management
1 38 (7.00%) Puppet
2 23 (4.24%) Nessus
3 15 (2.76%) SCCM
4 10 (1.84%) FortiGate
5 8 (1.47%) Ansible
5 8 (1.47%) Packer
5 8 (1.47%) Red Hat Satellite
5 8 (1.47%) SCOM
5 8 (1.47%) Terraform
5 8 (1.47%) WSUS
6 7 (1.29%) Network Intrusion Detection System
7 6 (1.10%) Norton AntiVirus
8 5 (0.92%) BMC PATROL
8 5 (0.92%) Nagios
8 5 (0.92%) OSSEC
9 4 (0.74%) vCenter Server
10 3 (0.55%) Cisco Prime
10 3 (0.55%) McAfee ePO
10 3 (0.55%) SELinux
11 2 (0.37%) Nmap
Vendors
1 62 (11.42%) Microsoft
2 51 (9.39%) Cisco
3 35 (6.45%) Splunk
4 33 (6.08%) VMware
5 32 (5.89%) Qualys
6 24 (4.42%) Oracle
7 20 (3.68%) Citrix
8 16 (2.95%) McAfee
9 13 (2.39%) CheckPoint
9 13 (2.39%) Red Hat
10 12 (2.21%) F5
10 12 (2.21%) Palo Alto
10 12 (2.21%) Tufin
11 10 (1.84%) Tripwire
12 9 (1.66%) IBM
12 9 (1.66%) Intel
12 9 (1.66%) Symantec
13 8 (1.47%) AlienVault
13 8 (1.47%) Juniper
13 8 (1.47%) LogRhythm